This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/718a1b4f-b64c-402c-be15-dd82a41a1af6/0/AS43180.roa File: AS43180.roa (raw, json) Hash identifier: nv2BlqKLNdkgk9XtUqvUddMcAYQIQGevl7aSLGigiUE= Subject key identifier: 98:6C:EF:56:A6:7C:C9:42:7A:3B:B3:82:36:D3:C0:1F:B3:12:21:38 Certificate issuer: /CN=218cc6e24105de6c5c9003d65243893cb3cfdd01 Certificate serial: 0D80A953646B2132C64CB4FF9531CFF6EA30A7CB Authority key identifier: 21:8C:C6:E2:41:05:DE:6C:5C:90:03:D6:52:43:89:3C:B3:CF:DD:01 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/IYzG4kEF3mxckAPWUkOJPLPP3QE.cer Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/718a1b4f-b64c-402c-be15-dd82a41a1af6/0/AS43180.roa Signing time: Fri 09 Jan 2026 14:55:33 +0000 ROA not before: Fri 09 Jan 2026 14:50:33 +0000 ROA not after: Fri 08 Jan 2027 14:55:33 +0000 asID: 43180 IP address blocks: 82.23.16.0/24 maxlen: 24 82.23.25.0/24 maxlen: 24 82.23.28.0/24 maxlen: 24 82.23.30.0/24 maxlen: 24 82.23.31.0/24 maxlen: 24 82.23.34.0/24 maxlen: 24 82.23.39.0/24 maxlen: 24 82.23.41.0/24 maxlen: 24 82.23.42.0/24 maxlen: 24 82.23.43.0/24 maxlen: 24 82.23.49.0/24 maxlen: 24 82.23.54.0/24 maxlen: 24 Validation: OK Signature path: rsync://rsync.paas.rpki.ripe.net/repository/718a1b4f-b64c-402c-be15-dd82a41a1af6/0/218CC6E24105DE6C5C9003D65243893CB3CFDD01.crl rsync://rsync.paas.rpki.ripe.net/repository/718a1b4f-b64c-402c-be15-dd82a41a1af6/0/218CC6E24105DE6C5C9003D65243893CB3CFDD01.mft rsync://rpki.ripe.net/repository/DEFAULT/IYzG4kEF3mxckAPWUkOJPLPP3QE.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Mon 19 Jan 2026 04:45:18 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 0d:80:a9:53:64:6b:21:32:c6:4c:b4:ff:95:31:cf:f6:ea:30:a7:cb Signature Algorithm: sha256WithRSAEncryption Issuer: CN=218cc6e24105de6c5c9003d65243893cb3cfdd01 Validity Not Before: Jan 9 14:50:33 2026 GMT Not After : Jan 8 14:55:33 2027 GMT Subject: CN=986CEF56A67CC9427A3BB38236D3C01FB3122138 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bd:66:3b:aa:78:78:89:b7:9e:61:b5:b8:2b:5e: 05:8b:bd:ce:35:08:95:aa:40:0c:c8:70:1d:6e:fb: 7a:db:ce:5d:ff:0c:a3:b6:b0:3a:c0:47:c9:00:a5: f9:b5:af:c6:7a:0b:f3:20:a8:a9:ce:e6:a0:c4:97: c1:13:94:cb:c2:24:b9:66:57:6d:ed:db:8c:c8:f6: 13:36:cb:6b:b5:1e:f0:be:a4:a1:b3:27:75:66:8a: 7f:72:9b:3f:92:fe:6b:1f:94:d9:79:c5:9b:09:f6: b3:2c:c1:dd:26:2c:ac:f6:fd:51:8b:31:a2:53:9b: 42:79:97:60:51:20:35:98:88:31:e8:79:d7:a6:67: 03:77:a8:94:e7:79:f6:07:b7:f0:97:f6:7b:27:42: 35:f6:a0:ae:08:49:de:03:86:50:84:8b:ee:42:28: 4c:d9:38:06:a7:0a:5b:5b:29:8b:34:03:22:89:cb: 01:30:ea:c0:31:ef:57:1f:91:29:d2:f2:eb:e5:74: bd:75:69:59:db:04:23:a7:0f:d7:6f:3f:a7:1e:f3: 94:25:c8:0e:20:52:2d:06:df:dc:cc:d2:c5:15:f3: 72:90:d7:f7:a3:83:18:f1:58:9f:4e:fa:0a:2c:aa: 1b:58:ee:23:f8:8c:8c:cd:51:f4:62:a1:c1:f5:cf: 2a:3b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 98:6C:EF:56:A6:7C:C9:42:7A:3B:B3:82:36:D3:C0:1F:B3:12:21:38 X509v3 Authority Key Identifier: keyid:21:8C:C6:E2:41:05:DE:6C:5C:90:03:D6:52:43:89:3C:B3:CF:DD:01 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rsync.paas.rpki.ripe.net/repository/718a1b4f-b64c-402c-be15-dd82a41a1af6/0/218CC6E24105DE6C5C9003D65243893CB3CFDD01.crl Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/IYzG4kEF3mxckAPWUkOJPLPP3QE.cer Subject Information Access: Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/718a1b4f-b64c-402c-be15-dd82a41a1af6/0/AS43180.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 82.23.16.0/24 82.23.25.0/24 82.23.28.0/24 82.23.30.0/23 82.23.34.0/24 82.23.39.0/24 82.23.41.0-82.23.43.255 82.23.49.0/24 82.23.54.0/24 Signature Algorithm: sha256WithRSAEncryption 37:b8:3d:f7:a9:74:27:19:67:80:4b:5a:51:1a:0e:49:77:a4: 14:be:b4:29:e6:f1:21:b2:7a:29:d4:40:23:31:cb:c8:9c:8d: 7d:ec:27:77:61:31:4e:ec:07:3b:6d:52:07:35:41:32:9f:ef: 68:fc:a7:36:36:a2:f4:fe:e0:63:13:fc:62:73:5c:7a:c3:37: c0:1e:10:a9:45:38:49:c1:24:82:fe:1f:be:91:7b:f4:e1:fd: a2:d6:57:b4:dc:bd:45:6b:73:d0:fb:29:e5:99:a0:93:f6:dc: 58:af:aa:15:b9:b1:3c:4c:88:21:93:32:14:b8:51:5e:cf:1b: 33:85:f8:fc:d2:d7:6a:28:35:1c:38:e9:47:ee:c0:d2:1f:dc: 73:85:56:80:a4:d7:af:51:39:d7:17:d9:11:95:cd:fa:df:2a: 53:ef:33:8a:36:10:8c:59:14:a0:8a:57:27:c2:47:9a:c2:d9: 99:19:4d:ee:d7:50:36:c3:9c:5b:2d:5f:4f:93:c4:85:80:4c: 85:1e:0c:42:30:73:56:ab:31:83:b1:97:fe:1a:46:b8:2b:d9: a0:dc:8d:f1:fb:df:f8:ca:56:30:96:cc:e3:b2:d5:a8:2c:a8: a9:30:d3:5c:8d:74:6b:b8:0d:49:ba:da:17:03:33:cb:62:ba: 30:0e:a1:9f -----BEGIN CERTIFICATE----- MIIFNzCCBB+gAwIBAgIUDYCpU2RrITLGTLT/lTHP9uowp8swDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoMjE4Y2M2ZTI0MTA1ZGU2YzVjOTAwM2Q2NTI0Mzg5M2Ni M2NmZGQwMTAeFw0yNjAxMDkxNDUwMzNaFw0yNzAxMDgxNDU1MzNaMDMxMTAvBgNV BAMTKDk4NkNFRjU2QTY3Q0M5NDI3QTNCQjM4MjM2RDNDMDFGQjMxMjIxMzgwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQC9ZjuqeHiJt55htbgrXgWLvc41 CJWqQAzIcB1u+3rbzl3/DKO2sDrAR8kApfm1r8Z6C/MgqKnO5qDEl8ETlMvCJLlm V23t24zI9hM2y2u1HvC+pKGzJ3Vmin9ymz+S/msflNl5xZsJ9rMswd0mLKz2/VGL MaJTm0J5l2BRIDWYiDHoedemZwN3qJTnefYHt/CX9nsnQjX2oK4ISd4DhlCEi+5C KEzZOAanCltbKYs0AyKJywEw6sAx71cfkSnS8uvldL11aVnbBCOnD9dvP6ce85Ql yA4gUi0G39zM0sUV83KQ1/ejgxjxWJ9O+gosqhtY7iP4jIzNUfRiocH1zyo7AgMB AAGjggJBMIICPTAdBgNVHQ4EFgQUmGzvVqZ8yUJ6O7OCNtPAH7MSITgwHwYDVR0j BBgwFoAUIYzG4kEF3mxckAPWUkOJPLPP3QEwDgYDVR0PAQH/BAQDAgeAMIGVBgNV HR8EgY0wgYowgYeggYSggYGGf3JzeW5jOi8vcnN5bmMucGFhcy5ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvNzE4YTFiNGYtYjY0Yy00MDJjLWJlMTUtZGQ4MmE0MWEx YWY2LzAvMjE4Q0M2RTI0MTA1REU2QzVDOTAwM0Q2NTI0Mzg5M0NCM0NGREQwMS5j cmwwZAYIKwYBBQUHAQEEWDBWMFQGCCsGAQUFBzAChkhyc3luYzovL3Jwa2kucmlw ZS5uZXQvcmVwb3NpdG9yeS9ERUZBVUxUL0lZekc0a0VGM214Y2tBUFdVa09KUExQ UDNRRS5jZXIwegYIKwYBBQUHAQsEbjBsMGoGCCsGAQUFBzALhl5yc3luYzovL3Jz eW5jLnBhYXMucnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5LzcxOGExYjRmLWI2NGMt NDAyYy1iZTE1LWRkODJhNDFhMWFmNi8wL0FTNDMxODAucm9hMBgGA1UdIAEB/wQO MAwwCgYIKwYBBQUHDgIwVwYIKwYBBQUHAQcBAf8ESDBGMEQEAgABMD4DBABSFxAD BABSFxkDBABSFxwDBAFSFx4DBABSFyIDBABSFycwDAMEAFIXKQMEAlIXKAMEAFIX MQMEAFIXNjANBgkqhkiG9w0BAQsFAAOCAQEAN7g996l0JxlngEtaURoOSXekFL60 KebxIbJ6KdRAIzHLyJyNfewnd2ExTuwHO21SBzVBMp/vaPynNjai9P7gYxP8YnNc esM3wB4QqUU4ScEkgv4fvpF79OH9otZXtNy9RWtz0Psp5Zmgk/bcWK+qFbmxPEyI IZMyFLhRXs8bM4X4/NLXaig1HDjpR+7A0h/cc4VWgKTXr1E51xfZEZXN+t8qU+8z ijYQjFkUoIpXJ8JHmsLZmRlN7tdQNsOcWy1fT5PEhYBMhR4MQjBzVqsxg7GX/hpG uCvZoNyN8fvf+MpWMJbM47LVqCyoqTDTXI10a7gNSbraFwMzy2K6MA6hnw== -----END CERTIFICATE-----Generated at Sun Jan 18 08:56:35 2026 by rpki-client